AI Agents to Manage 80% of Security Operations by 2028

A new report from the International Data Corporation (IDC) forecasts a significant shift in cybersecurity operations, predicting that by 2028, artificial intelligence (AI) agents will manage approximately 80% of alerts in security operations centers (SOCs) globally. The findings, detailed in the 2026 FutureScape: Worldwide Security and Trust, highlight a transformative approach to cybersecurity that many organizations will need to adopt to keep pace with evolving threats.

The report emphasizes the advantages of AI in the realm of cybersecurity, noting that its speed, scalability, and predictive capabilities make it far more effective than traditional methods in detecting, preventing, and responding to cyber threats. This shift towards AI-driven security is crucial for organizations facing increasingly sophisticated and AI-powered cyberattacks.

As companies look to enhance their cybersecurity strategies, the IDC report outlines several key predictions that could reshape the landscape. By 2027, it is anticipated that 80% of organizations will encounter phishing attacks utilizing AI-generated synthetic identities. This alarming trend highlights the need for businesses to bolster their defenses against more sophisticated threats.

Emerging Trends in Cybersecurity

The report identifies ten significant trends that will impact how organizations address security and trust. Among these is the expectation that by 2028, 40% of enterprises will implement autonomous agent-powered cyber risk quantification platforms. These platforms are designed to convert security metrics into financial exposure, thereby assisting organizations in budget planning and risk assessments related to mergers and acquisitions.

Additionally, the report predicts that by 2027, 60% of enterprises adopting AI technologies will require an AI Bill of Materials (BoM) to facilitate ongoing security vulnerability scanning and ensure compliance with regulations. This requirement signals a growing recognition of the importance of transparency and accountability in AI systems.

Another notable trend is the projected increase in the use of Private Cloud Compute (PCC). By 2029, it is expected that 70% of large enterprises will implement PCC to safeguard data privacy within cloud-based large language model systems, marking a shift from initial explorations of AI capabilities to large-scale implementation.

Implications for Cybersecurity Professionals

The FutureScape report indicates that cybersecurity professionals, particularly Chief Information Security Officers (CISOs), are beginning to recognize the benefits of integrating next-generation AI technologies into their operations. By 2027, an estimated 85% of detection and response playbooks will be dynamically generated at the time a SOC alert is triggered, streamlining response efforts and enhancing efficiency.

Moreover, as the landscape of cybersecurity continues to evolve, it is anticipated that 15% of enterprise PC users will have deep fake detection applications running locally by 2027. This will provide an additional layer of defense against the increasing prevalence of manipulated digital content.

As organizations grapple with the complexities of safeguarding their digital environments, the IDC report serves as a crucial reminder of the need for proactive measures. With the impending rise of AI-driven cybersecurity solutions, businesses must prepare not only for the opportunities these technologies present but also for the risks associated with them.

In summary, the IDC’s findings underscore a pivotal moment in cybersecurity, where AI is poised to play a central role in the management and mitigation of threats. As organizations embrace these changes, the focus will shift toward creating resilient systems capable of adapting to the ever-changing landscape of cyber threats.